Lucene search
K

54406 matches found

Zero Day Initiative
Zero Day Initiative
added 2026/03/06 12:0 a.m.5 views

GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of palette...

7.8CVSS6.2AI score0.00867EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/06 12:0 a.m.5 views

Google Android elevation of privilege vulnerability (CNVD-2026-19056)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability caused by an out-of-bounds write due to an integer overflow in multiple functions of memprotect.c. The vulnerability is caused by an integer overflow in th...

8.4CVSS6.1AI score0.00152EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.4 views

SUSE SLES12 Security Update : mozilla-nss (SUSE-SU-2026:0814-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0814-1 advisory. Update to NSS 3.112.3: CVE-2026-2781: Avoid integer overflow in platform-independent ghash bsc1258568 Tenable has extracted the preceding description...

9.8CVSS5.9AI score0.0036EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.8 views

PT-2026-23629

TinyWeb is a web server HTTP, HTTPS written in Delphi for Win32. Prior to version 2.03, an integer overflow vulnerability in the string-to-integer conversion routine Val allows an unauthenticated remote attacker to bypass Content-Length restrictions and perform HTTP Request Smuggling. This can le...

9.3CVSS6AI score0.00467EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.7 views

TinyWeb 环境问题漏洞

TinyWeb is a simple and lightweight HTTP server developed by Konstantin Belyalov. Versions of TinyWeb prior to 2.03 contained an environmental vulnerability. This vulnerability stemmed from an integer overflow in the string-to-integer conversion routine, which could lead to bypassing the...

9.3CVSS5.9AI score0.00467EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.5 views

NewStart CGSL MAIN 6.06 (SP) : p11-kit Multiple Vulnerabilities (NS-SA-2026-0024)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has p11-kit packages installed that are affected by multiple vulnerabilities: - An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit...

7.5CVSS6.1AI score0.03515EPSS
Exploits0References7
Amazon
Amazon
added 2026/03/06 12:0 a.m.5 views

Medium: gimp

Issue Overview: GIMP: PSD loader: heap-buffer-overflow in freadpascalstring no null terminator CVE-2026-2239 An integer overflow vulnerability has been identified in the PSP Paint Shop Pro file parser of GIMP. The issue occurs in the readcreatorblock function, where the Creator metadata block is...

6.5CVSS6.1AI score0.00838EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.4 views

openSUSE 15: expat / libexpat-devel / libexpat-devel-32bit / libexpat1 / etc (SUSE-SU-2026:0826-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0826-1 advisory. - CVE-2026-24515: Fixed a null dereference in XMLExternalEntityParserCreate. bsc1257144 - CVE-2026-25210: Fixed an integer overflow in doContent...

7.8CVSS6.8AI score0.00193EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.2 views

openSUSE 16 Security Update : expat (openSUSE-SU-2026:20306-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20306-1 advisory. - CVE-2026-24515: failure to copy the encoding handler data passed to XMLSetUnknownEncodingHandler may cause a NULL dereference bsc1257144. -...

7.8CVSS7AI score0.00193EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.3 views

NewStart CGSL MAIN 6.06 (SP) : e2fsprogs Multiple Vulnerabilities (NS-SA-2026-0025)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has e2fsprogs packages installed that are affected by multiple vulnerabilities: - Heap-based buffer overflow in closefs.c in the libext2fs library in e2fsprogs before 1.42.12 allows local users to execute arbitrary code by causing a...

5.8CVSS6.4AI score0.03978EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.4 views

SUSE SLES15 Security Update : glibc-livepatches (SUSE-SU-2026:0827-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:0827-1 advisory. - CVE-2026-0861: Fixed inadequate size check in the memalign suite may result in an integer overflow bsc1256913 Tenable has extracted the preceding...

8.4CVSS5.8AI score0.00352EPSS
Exploits1References4
Amazon
Amazon
added 2026/03/06 12:0 a.m.4 views

Medium: vsftpd

Issue Overview: A flaw was found in vsftpd. This vulnerability allows a denial of service DoS via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafted STAT command with a specific byte sequence. CVE-2025-14242 Affected Packages:...

6.5CVSS5.9AI score0.00737EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.5 views

Amazon Linux 2 : vsftpd, --advisory ALAS2-2026-3176 (ALAS-2026-3176)

The version of vsftpd installed on the remote host is prior to 3.0.2-25. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3176 advisory. A flaw was found in vsftpd. This vulnerability allows a denial of service DoS via an integer overflow in the ls command parameter...

6.5CVSS5.8AI score0.00737EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2026/03/06 12:0 a.m.271 views

📄 OpenEXR Integer Overflow

Proof of concept exploit for a potential integer overflow condition when processing specially crafted multi‑part DeepScanLine EXR files with OpenEXR. The program generates a malicious .exr file containing 86 parts, where each pixel is assigned 50,000,000 samples. When these values are summed...

8.4CVSS5.9AI score0.00201EPSS
Exploits2
SUSE Linux
SUSE Linux
added 2026/03/05 3:16 p.m.4 views

Security update for glibc-livepatches

This update for glibc-livepatches fixes the following issues: CVE-2026-0861: Fixed inadequate size check in the memalign suite may result in an integer overflow bsc1256913 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...

8.5CVSS6AI score0.00352EPSS
Exploits1References4
OSV
OSV
added 2026/03/05 3:16 p.m.0 views

SUSE-SU-2026:0827-1 Security update for glibc-livepatches

This update for glibc-livepatches fixes the following issues: - CVE-2026-0861: Fixed inadequate size check in the memalign suite may result in an integer overflow bsc1256913...

8.4CVSS5.8AI score0.00352EPSS
Exploits1References3
SUSE Linux
SUSE Linux
added 2026/03/05 3:16 p.m.8 views

Security update for expat

This update for expat fixes the following issues: CVE-2026-24515: Fixed a null dereference in XMLExternalEntityParserCreate. bsc1257144 CVE-2026-25210: Fixed an integer overflow in doContent. bsc1257496 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...

7.3CVSS6AI score0.00193EPSS
Exploits0References8
OSV
OSV
added 2026/03/05 3:16 p.m.3 views

SUSE-SU-2026:0826-1 Security update for expat

This update for expat fixes the following issues: - CVE-2026-24515: Fixed a null dereference in XMLExternalEntityParserCreate. bsc1257144 - CVE-2026-25210: Fixed an integer overflow in doContent. bsc1257496...

7.8CVSS5.8AI score0.00193EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/03/05 12:56 p.m.163 views

Exploit for Integer Overflow or Wraparound in Linux Linux_Kernel

No d...

8.4CVSS7.2AI score0.25151EPSS
Exploits11
GithubExploit
GithubExploit
added 2026/03/05 12:47 p.m.124 views

Exploit for Integer Overflow or Wraparound in Linux Linux_Kernel

POC for...

7.8CVSS6.7AI score0.01944EPSS
Exploits5
Rows per page
Query Builder